campus wide network

A Project Report On

Installation of Campus Wide Network(Prepared in IS Department, BEL)

a) ISO – 9001- 2000 b) ISO 14001 c) ISO - 18001 OHSAS

CERTIFICATION

BHARAT ELECTRONICSGHAZIABAD

Submitted by: Aman Garg (CS/11/11006)

INTRANETWORKING, INFORMATION SYSTEM DEPARTMENT

CONTENTS

ACKNOWLEDGEMENT

CERTIFICATE

PREFACE

ABOUT BEL, THE ORGANIZATION

HISTORY OF BHARAT ELECTRONICS LIMITED

CORPORATE MOTTO, MISSION & OBJECTIVE

MILESTONES

AWARDS

MANUFACTURING UNITS

ROTATION PROGRAM

D & ER

EMMCA

IS

THE PROJECT

CASE STUDY

EPILOGUE

2

3

4

5

11

18

45

46

1


ACKNOWLEDGEMENT

I am very thankful to all the members of the Information System

Department. Each of them was extremely co-operative and helping,

without this help & guidance it would not have been possible for me to

complete this project. They all have been very supportive in my work

with their encouragement or criticism. I am deeply indebted to all of

them and welcome this opportunity to benefit further from their

contribution.

I pay my sincere thanks to Mr. DINESH GOEL (Manager-IS)

who permitted me to work in this Department and guided through the

tough times.

It is apt to mention that this practical experience is definitely

going to enhance my knowledge.

Sincerely,

Aman Garg

2


CERTIFICATE

Dated: JULY 6th, 2013

This is to certify that Mr. Aman Garg, a student of B.Tech (COMPUTER SCIENCE), has successfully completed his summer training in Information Systems Dep’t., Bharat Electronics Limited, Ghaziabad from 28TH May 2013 to 06TH July 2013.

A Project titled “INSTALLATION OF CAMPUS WIDE NETWORK” was assigned to him. In this period he worked diligently and made valuable contribution in developing the Project. All his work is genuine and original and was timely completed.

His conduct during the course of the training was excellent.

Mr. Dinesh Goel (Manager – IS)

PROLOGUE

The four weeks industrial training is a part of 4-yr Bachelor of

Technology course. Practical industrial training mainly aims at making

3


one aware of the industrial environment, which essentially means that

one gets to know the limitations, constraints as well as freedom under

which an Engineer works. One also gets an opportunity to watch from

close quarters that indicates Manager relation.

This training mainly involves industrial and complete knowledge

of designing, developing and testing of various modules recognized by

the industry.

BEL, THE ORGANIZATION

History of Bharat Electronics Limited…

With over four decades of manufacturing experience Bharat Electronics Limited has pioneered the professional electronics movement in India. With continuous upgradation of technology, commitment to quality and constant innovation, BEL has grown into a multi product, multi unit, and multi technology company.

BEL has set up impressive infrastructure and manufacturing facilities in their nine ISO certified production units around the country.

4


BEL has also established two joint ventures - with General Electric Medical Systems, USA for X-ray tubes and Multitone, UK for paging systems and has a subsidiary company BEL Optronic Devices Limited for the manufacture of Image Intensifier tubes.

BEL has nurtured itself to be known as one of the best public sector units in the nation. A peep into Bharat Electronics's Archives section, gives an idea of the progress at BEL.

BEL has production units established at different parts of the country. The year of establishment and location are as follows:

Year of establishment Location

1954

1972

1979

1979

1984

1984

1985

1985

1986

Bangalore

Ghaziabad

Pune

Taloja (Maharashtra)

Hyderabad

Panchkula (Haryana)

Chennai

Machhilipathnam (A.P.)

Kotdwara (U.P.)

Motto Mission and Objectives…The passionate pursuit of excellence at BEL is reflected in a reputation with its

customers that can be described in its motto, mission and objectives:

CORPORATE MOTTO"Quality, Technology and Innovation."

CORPORATE MISSIONTo be the market leader in Defense Electronics and in other chosen fields

and products.

5


CORPORATE OBJECTIVES To become a customer-driven company supplying quality products at

competitive prices at the expected time and providing excellent customer support.

To achieve growth in the operations commensurate with the growth of professional electronics industry in the country.

To generate internal resources for financing the investments required for modernization, expansion and growth for ensuring a fair return to the investor.

In order to meet the nation's strategic needs, to strive for self-reliance by indigenization of materials and components.

To retain the technological leadership of the company in Defense and other chosen fields of electronics through in-house Research and development as well as through Collaboration/Co-operation with Defense/National Research Laboratories, International Companies, Universities and Academic Institutions.

To progressively increase overseas sales of its products and services.

To create an organizational culture which encourages members of the organization to realize their full potential through continuous learning on the job and through other HRD initiatives?

Milestones in Chronological Order… Bharat Electronics Ltd has natured itself to be known as one of the best public sector units in the nation. A peep into Bharat Electronics Ltd milestones section gives an idea of the progress at Bharat Electronics Ltd.

YEAR MILESTONE

1954 Incorporation of BEL

1956 Equipment production started at Bangalore

1961 Receiving Valves

1962 Germanium Semiconductors

1966 Radar’s

6


1967 Transmitting Tubes

1968 HF & Broadcast Equipment, Silicon Semiconductor

1970 X-ray Tubes & manetrones

1971 Integrated Circuits & Hybrid micro circuits

1972 B/W TV Picture Tubes

1974 Ghaziabad Unit

1979 Pune Unit

1982 Space Electronics Division

1983 Machilipatnam Integrated with BEL

1985 Madras & Panchkula Units , Broadcast & TV , Digital Communication Equipment Division

1986 Kotdwara ,Taloza & Hyderabad Units

1987 Naval Equipment Division

1988 Central Research Laboratory Bangalore

1989 Telecom-Switching & Transmission System & Mass Mfg. Facility

1991 EMI/EMC Test Facilities & Computer Software

1992 SATCOM

1993 CRL- Ghaziabad

1994 ISO-9002 Accreditation and successively ISO-9001 Accreditation in 1996

Awards for BEL…

Sl.No.Details of the Award Year

1.FICCI Award for Research in Science & Technology(for the corporate initiative of R&D)

1990

2.

DSIR National R&D Award(for successful commercialization of Public Funded R&D)(for D&E project handled at BEL-GAD)

1992

3.

DSIR National R&D Award(for in house R&D efforts under Electronics & Electrical Industries Sector)(for D&E projects handled at BEL-Bangalore, Machilipatnam & Ghaziabad)

1993

7


4.

DSIR National R&D Award(for in house R&D efforts under Electronics Industries Sector)(for D&E Projects handled at BEL-Bangalore & Ghaziabad)

1995

5.

DSIR National R&D Award(for successful commercialization of Public Funded R&D)(for D&E projects handled at BEL-Bangalore & Panchkula)

1998

6.Defense Technology Absorption Award '98(Sponsored by DRDO)(for D&E projects handled at BEL-Hyderabad)

1999-2000

7.

Award for Excellence in R&D for the year 1998(sponsored by Ministry of Information Technology, GoI)(for BEL-Ghaziabad's developments of various IFF Systems)

2000-2001

8.

Award for Excellence in Professional Electronics for the year 1998(sponsored by Ministry of Information Technology, GoI)(for BEL-KOT's excellent performance in Production, R&D & its commitment to Quality & Service)

2000-2001

9.

Award for Contribution in areas of Defense R & D to Col. (Retd.) H. S. Shankar, Director ( R & D) for the year 2001-2002(sponsored by Society for Defense Technologists - SODET)

2001-2002

Manufacturing Units:

BANGALORE (KANARATAKA)

BEL started its production activities in Bangalore on 1954 with 400W high frequency

(HF) transmitter and communication receiver for the Army. Since then, the Bangalore

Complex has grown to specialize in communication and Radar/Sonar Systems for the

Army, Navy and Air-force.

BEL’s in-house R&D and successful tie-ups with foreign Defense companies and Indian

Defense Laboratories has seen the development and production of over 300 products in

Bangalore alone. The Unit has now diversified into manufacturing of electronic products

for the civilian customers such as DoT, VSNL, AIR and Doordarshan, Meteorological

8


Dept., ISRO, Police, Civil Aviation and Railways. As an aid to Electorate, the unit has

developed Electronic Voting Machines that are produced at its Mass Manufacturing

Facility (MMF).

GHAZIABAD (UTTER PRADESH)

The second largest Unit at Ghaziabad was set up in 1974 to manufacture special types

of radar for the Air Defense Ground Environment Systems (Plan ADGES). The Unit

provides Communication Systems to the Defense Forces and Microwave Communication

Links to the various departments of the State and Central Govt. and other users. The

Unit’s product range included Static and Mobile Radar, Tropo scatter equipment,

professional grade Antennae and Microwave components.

PUNE (MAHARASHTRA)

This Unit was started in 1979 to manufacture Image Converter Tubes. Subsequently,

Magnesium Manganese-dioxide Batteries, Lithium Sulphur Batteries and X-ray

Tubes/Cables were added to the product range. At the present the Laser Range Finders

for the Defense services.

MACHILIPATNAM (ANDHRA PRADESH)

The Andhra Scientific Co. at Machilipatnam, manufacturing Optics/Opto-electronic

equipment was integrated with BEL in 1983. The product line includes passive Night

Vision Equipment, Binoculars and Goggles, Periscopes, Gun Sights, Surgical Microscope

and Optical Sights and Mussel Reference Systems for tank fire control systems. The Unit

has successfully diversified to making the Surgical Microscope with zoom facilities.

PANCHKULA (HARYANA)

To cater the growing needs of Defense Communications, this Unit was established in

1985. Professional grade Radio-communication Equipment in VHF and UHF ranges

entirely developed by BEL and required by the Defense services are being met from this

Unit.

CHENNAI (TAMIL NADU)

9


In 1985, BEL established another Unit at Chennai to facilitate manufacture of Gun

Control Equipment required for the integration and installation and the Vijay anta tanks.

The Unit is now manufacturing Stabilizer Systems for T-72 tanks, Infantry Combat

Vehicles BMP-II; Commander’s Panoramic Sights & Tank Laser Sights are among others.

KOTDWARA (UTTER PRADESH)

In 1986, BEL started a unit at Kotdwara to manufacture Telecommunication Equipment

for both Defense and civilian customers. Focus is being given on the requirement of the

Switching Equipment.

TALOJA (MAHARASHTRA)

For the manufacture of B/W TV Glass bulbs, this plant was established in collaboration

with coming, France in 1986. The Unit is now fully mobilized to manufacture 20’’ glass

bulbs indigenously.

HYDERABAD (ANDHRA PRADESH)

To coordinate with the major Defense R&D Laboratories located in Hyderabad, DLRL,

DRDL and DMRL, BEL established a Unit at Hyderabad in 1986. Force Multiplier Systems

are manufactured here for the Defense

ROTATIONROTATION -PROGRAMME

The first week of the training consists of a rotational training

programme comprising of a visit to different sections of the

organization. Out of the various nine departments in BEL, rotational

visit is done in the ones related to the streams. The trainees in groups

are sent to the departments and they are to report to the D.G.M where

they are told about the activities and projects being undertaken. The

rotational training proves to be quite significant in getting an overview

about the organization as it imparts knowledge about the basic

questions like-what, how, where?

The departments are allowed to be visited for two days in each

department. The departments covered in the rotational training were:-

10


1. D & E or Development and Engineering

2. EMMCA or Equipment Modular Command & Control

Application

3. IS or Information Systems

IS: Information System…

This department deals with the financial information of the organization. It also

provides various information to organization and employee.

Employee daily entry.

Pay of the employee.

Required list of the purchase item.

Maintenance of the networking system.

This department also deals with the networking system of organization. All the data

of the organization is stored here in the computer (servers). It also sees the

requirement of the employee on the computers. They provide various information

through intranet to the employee like

E-mail

11


Internal and co-operate office circular.

Internet

Net term (internal software)

IS department is responsible for BEL’s own homegrown manufacturing and control

system called BELMAC. It comprises of almost all modules a modern ERP system but

is host and dumb terminal based.

12


NETWORK

THE PROJECT(INSTALLATION OF CAMPUS WIDE NETWORK)

Aim: To plan, design, implement & establish a campus wide network.

13


Description: A NETWORK is the mechanism that enables distributed

computers and their users to communicate and share resources.

A Network at its simplest is anything that enables two or more

computers to communicate with each other and/or other devices. This

enables users to use computers and networks to share information,

collaborate on a work item, print and even communicate directly

through individually addressed messages.

There is need for standardization of the aspects of the network. Today,

many different standards bodies are responsible for defining national

and/or international standards for different aspects of information

technologies, including data communications and networking. Although

frequently these standard bodies either collaborate or cooperate to

ensure as universal set of standards as possible, there can still be

some confusion, although overwhelming effect is positive. We give

below the names of some standard organizations:-

1. ANSI-AMERICAN NATIONAL STANDARD INSTITUTE

2. IEEE-INSTITUTE OF ELECTRICAL & ELECTRONICS ENGINEERS

3. ISO-INTERNATIONAL ORGANISATION FOR STANDARDIZATION

4. IEC-INTERNATIONAL ELECTROTECHNICAL COMMISION

5. IAB-INTERNET ARCHITECTURE BOARD

Part-I: To prepare the user nodes/workstation.

In order to prepare and enable the client/user end workstations to

become part of LAN setup it must have the following requirements:

14


Hardware Requirements

Software Requirements


To enable the client/user and workstation to become a part of LAN

setup we need to fulfill following hardware requirements:

Minimum 128 MB RAM (256 MB RAM recommended).

A NOS (Network operating system) should be installed on the

system (as recommended by Microsoft).

It must support or consist of TCP/IP protocol suite.

A Network Interface Card should be installed on the PCI slot in the

system cabinet. e.g. Realtek RTL8139/810x Family Fast.

A Network Interface Card (NIC) is a printed circuit board that is

installed in a computer’s I/O bus. The back of the card contains a

physical interface for a specific connector type. Each connector type is

designed for a specific transmission media. This card provides the

connectivity between a computer’s internal system resources and the

external resources connected to the network. It embodies the logic of

LAN’S Data Link and Physical Layers.

15


16



After establishing the hardware now our next step is to install

necessary software required. The software requirements are:

TCP/IP protocol stack

A protocol suite is a suite of related communication protocol that offers

users the mechanism and services required to communicate with other

network connected machines. From the user’s perspective, the

protocol stack is that what makes a network usable. It is a connection

oriented protocol. It is different from UDP (User Datagram Protocol) in

which the connection is not established and a data is sent in the form

of packets. Data is sent in the form of packets and a connection is

established between the sender and receiver.

The most important function of the network protocol is to make sure

that information reaches the network location .It accomplishes this

task by routing packets of information to location specified by the

Internet Protocol Addresses.

The TCP/IP header contains two addresses:

The source address that the message comes from and

The destination address that it is being sent to.

Because humans don’t relate to strings of numbers very well

computers are typically identified by names. For information to reach

the address where humans wanted to be some resolution must be

reached between the numerical IP address understood by the

computer and the alpha numeric names given to them. To accomplish

this TCP/IP relies on a group of protocols and services that represent

17


special advanced name and address resolution functions .These

protocols and services include:

DNS-Domain Name System

WINS-Window’s Internet Naming Services

DHCP-Dynamic Host Configuration Protocol

ARP-Address Resolution Protocol

In addition to these supporting protocols associated with IP/Computer

name resolution, the TCP/IP protocol suite includes support for:

Electronics Mail Transportation

File And Print Services

Web Browsing

Network Troubleshooting

18


Naming Convention

Before creating the first user account a naming convention must be

established. The most workable system for creating username is one

19


that enables easy identification of the users yet is flexible enough to

allow unique naming. A naming system that consists of either the first

initial and last name or the first name and last initial are two that are

workable and limit user confusion. NBP is a Name Binding Protocol

contains the four basic functions:

1. Name Registration

Name registration registers the unique logical name in an NBP registry

database.

2. NAME LOOKUP

Name Lookup is provided to a computer that request’s another

computer’s address. This request is made and resolved transparently.

If the request is made using an object name NBP converts the name to

a numeric address. NBP always attempt to resolve such requests by

looking at the local node number. If no match is found, it broadcast a

request to other internetwork, if match still can not be found, the

request times out and requestor receives an error message.

3. Name Configuration

Configuration request are used to verify object-address relationship.

4. Name Deletion

Device on any network are periodically shut down or removed. When it

happens, a name deletion request is sent, and object name-to-

addressing tables are automatically updated.

We below give a snapshot which confirms our point of unique name of

a computer system.

20


Valid IP Address

21


An IP address is a 32-bit binary addressing scheme to identify

networks, network devices, and network connected machines. These

are strictly regulated by the Internet Network Information center

(InterNIC). Although it is entirely possible for a network administrator

to arbitrarily select unregistered IP address, this practice should not be

condoned .Computers having such spurious IP addresses can only

function properly with in the confines of their domain.

There are five classes of IP addresses each defined by an alphabetic

character: Class A, B, C, D and E. Each address consists of two parts: a

network address and a host address. The five classes represent

different compromises between the number of supportable networks

and hosts. Although these networks are binary, they are normally

identified with a dotted decimal style format ex: (135.65.121.6) to

facilitate the human usage. The dots are used to separate the address

four octants. Range of IP addresses for each class is given below:

Class A – 1.0.0.0 to 126.0.0.0.

Class B - 128.1.0.0 to 191.256.0.0.

Class C – 192.0.1.0 to 223.255.254.0.

Class D - 224.0.0.0 to 239.255.255.254.

Class E - there is no class E address for use

on the net.

We give below an example of unique IP address of a system. Here we

see that the computer has 80.0.68.13 as the IP address. Theses IP

addresses are provided by the protocol known as Dynamic Host

Configuration Protocol (DHCP).

22


PART 2: TO PREPARE A NETWORKING INFRASTRUCTURE

To establish a networking infrastructure we have to fulfill the following

requirements:

23





Some Networking Devices

In the physical layer, we find the repeaters. These are analog devices that are connected to two cable segments. A signal appearing on one of them is amplified and put out on the other. Repeaters do not understand frames, packets, or headers, they understand volts. E.g. Classic Ethernet was designed to allow 4 Repeaters, in order to extend maximum cable length from 500 Mts to 2500 Mts.

A Hub has a number of input lines that it joins electrically. Frame arriving on any of the lines are sent out on all the others. If two frames arrive at the same time they will collide, just as on Coaxial cable. The entire hub forms a single collision domain. All lines coming into hub must operate at same speed. Hubs unlike repeaters do not amplify signals (usually) and are designed to hold multiple line cards each with multiple inputs, otherwise differences are slight.

A Bridge connects two or more LANs. When a frame arrives software in the Bridge extracts the destination address, from the frame header and looks it up in the table to see where to send the frame. For Ethernet this address is the 48 bit destination address. Like a Hub, modern Bridge has line cards, usually for 4 to 8 input lines of a certain type. A line card for Ethernet can’t handle, say token ring frames because it doesn’t know where to find destination address in the frame header. With a Bridge, each line is its own collision domain, in contrast to a Hub.

Switches are similar to bridges in that both route on frame addresses. Main difference is that a Switch is most often used to connect individual computers.

A Router is a device that forwards data packets along networks. A router is connected to at least two networks, commonly two LANs or WANs or a LAN and its ISP network. Routers are located at gateways, the places where two or more networks connect. Routing is a process preformed by a router which moves packets of data around the

24


Internet. A router makes sure that a message is sent and received and is part of what makes TCP/IP such a useful protocol suite.

To be able to successfully start routing a router uses headers and a forwarding table to find the destinations for packets. A router uses the ICMP protocol section of the TCP/IP protocol suite. Routers use headers and forwarding tables to determine the best path for forwarding the packets, and they use protocols such as ICMP to communicate with each other and configure the best route between any two hosts.

Very little filtering of data is done through routers

A network gateway is an internetworking system, a system that joins two networks together. A network gateway can be implemented completely in software, completely in hardware, or as a combination of the two. Depending on their implementation, network gateways can operate at any level of the OSI model from application protocols to low-level signaling.

A Cisco router is a computer device that receives or forwards data packets to and from the Internet towards a destination in the process called routing. A router is the essential component of the computer networking that enables any sent data to arrive at the right destination.

A router (broadband router) is also a device that enables two or more computer to receive data packets from the Internet under one IP address at the same time.

Remember that to be able to connect to the Internet; a computer must have an IP address unique from the rest of the computers. Therefore, every computer connected to the Internet has it own IP address. It is like having a fingerprint or ID as an access pass to be

able to enter the web. With the presence of the router, this ?fingerprint? or ?ID? could be shared by two or more computer at the same time.

In simplest form, a router makes two or more computer use the Internet at the same with one access pass.

25


Application Layer Application Gateway

Transport Layer Transport Gateway

Network Layer Router

Data link Layer Bridge, Switch

Physical Layer Repeater, Hub

26


Layer3 switch (Central Switch) Router

1 Chassis based switch architecture with scalable back pane bandwidth over 32 Gbps.

2 Multi-layer switching performance over 15 Million pps (64 Byte).

3 Should support voice and data integration on the same switch to provide a single platform for running a multi-service network.

4 Should provide for capability to integrate VoIP using IP Telephone in the campus.

5 Should have provision to upgrade current 10BAseT/100BaseTX modules for in-line power to IP phones or should allow for the same externally.

6 Efficient intranet multimedia and multicast support through protocol independent multicast (PIM), Internet Group Management Protocol (IGMP), and GARP Multicast Registration Protocol (GMRP) delivering end to end, scalable bandwidth for multimedia and multicast applications.

7 Should support QoS policies enforced by using Layer 2, 3, and 4 information such as, precedence bits from IP, and 802.1p frames or layer 4 port numbers.

8 Support for in-built protocol based Server load balancing for optimal server utilization.

9 Support for fast Web Caching for optimal network utilization. Support for Web Caching Control protocol (WCCP2).

10 Support for multiple queues with configurable thresholds employing queue management techniques like WRED, WRR, and type of service / class of service (ToS/CoS) mapping mechanism to ensure that QoS is maintained as packets traverse Layer 2 and Layer 3 boundaries.

11 Support for wide range of IP, IPX, and IP multicast routing protocols.

12 Support for over 32000 MAC addresses.13 IEEE 802.1Q, 802.1p, 802.3x14 Ethernet: IEEE 802.3u, 100Base TX, 100Base FX.15 Gigabit Ethernet: IEEE 802.3z.

27


16 Support for hot standby redundancy on Layer 3.17 Support for SNMP MIB-II, 4 groups of RMON-1 (RFC 2819)

on each ports and RMON-2 (RFC 2021) through external Network Analysis Module.

18 Support for SMON – Switch monitoring.19 Support for IEEE 802.1D Spanning-Tree Protocol instance

per VLAN preferred.20 Modular architecture for quick replacement of faulty

modules.21 Redundancy and fault tolerance :

o Requirement for redundant switching matrix / Supervisory / Controller in central switch.

o Requirements for supporting redundant, load sharing and hot pluggable power supply.

o Requirement for Redundant Supervisory and Management module.

o Requirement for Redundant System clocks.o Requirement for Redundant Fan modules.

22 Requirement for hot swappable I/O modules.23 Support for over 4000 VLANs.24 Security: Switch to support Secure Port filtering, TACACs+

and IP permit lists, dynamic ACLs and MD5 Route authentication shall be preferred. If the same is offered by connecting an external device, then it is to be indicated.

25 Port requirement :o Gigabit Ethernet – provision for over 40 ports.o Fast Ethernet – 48 ports 10 BaseT / 100 BaseTX.

Option to enhance port count to over 200, should be able to support inline power if required.

o WAN ports support option for T1/E1, T3/E3, HSSI, ATM, and POS in the same chassis for future upgradeability.

o Voice support using FXS (at least 48 ports in the same chassis), E1.

26 Single TFTP download for entire chassis for the purpose of upgrade of Switch S/W.

27 Advanced diagnostic support for troubleshooting requirements.

28


Layer 2 Switches (Distribution Switches)

1 24/48 port 10Base T/100Base TX ports with full-duplex operation and auto sensing on each switched 10/100 port.

2 Modular field – replaceable Gigabit modules support SX, LX, LH and ZX (extended reach over 70km) capability.

3 Over 10 Gbps aggregate switching fabric.4 Over 8 Million pps forwarding rate.5 Support for at least 16 MB DRAM and 4 MB of Flash Memory.6 Dual priority forwarding queues on each 10/100 and Gigabit

Ethernet port with support for 802.1p.7 Bandwidth aggregation over 10/100 and Gigabit Ethernet up to 4

Gbps.8 Per port broadcast storm protection.9 Support for 4 groups of RMON – History, statistics, alarms, and

events on board. Support for 9 groups by using external analyzer through use of SPAN (Switch Port Analyzer).

10 Support for NTP (Network Time Protocol).11 8192 MAC Addresses.12 802.1Q VLAN configuration on all ports.13 Support for IEEE 802.1D Spanning – Tree Protocol instance per

VLAN preferred. Please indicate.14 IEEE 802.1p ready. Must provide two priority queues on 10/100

ports and 8 priority queues on Gigabit Ethernet ports allowing users to prioritize data packets.

15 Support for 802.3x full duplex on all ports.16 Support for switches to be stacked or clustered and manageable

using a single IP address.17 Support for up to 250 port based VLANs.18 Bandwidth aggregation support for Inter-switch links.19 Imbedded web based Network Management Software to

configure and manage all stacked/clustered switches. Quote for external HTTP server in case it is required.

20 Support for SNMP MIB – II, SNMP MIB extensions, Bridging MIB (RFC 1493).

21 Support for Telnet and Command Line Management.22 Support for IP multicast.23 Multifunction LEDs per port for port status, half-duplex/full-

duplex, and 10BaseT/100BaseT indication as well as switch-level status LEDs for system, RPS, and bandwidth utilization.

29


Access Switches

1 Support for at least 8 ports of 10BaseT/100BaseTX working simultaneously is required.

2 Support for Auto-sensing and Auto-negotiation on each port.3 Support for Web-based network management in addition to

regular management using SNMP.4 Support for at least 4 port-based VLANs.5 Internal power supply is required.

HUB Specifications

1 16 port of 10 Mbps each.2 Unmanaged and standalone.3 One AUI port.4 Inbuilt power supply.5 19” Rack Mounted.6 Front LED for Status and Link.

Following Minimum Configuration required with above parameters.

1. Minimum 9 Slot Chassis 1 Nos.2. Supervisory / Controller Module 1 Nos.3. Min. 10 Gigabit Ports 8 Nos. 1000 BaseSX & . 2 Nos 1000 BaseLX.4. Redundant Supervisory / Controller 1 Nos Module5. Redundant Power Supply 1 Nos.6. 1 Port QC-12 Uplink Module 1 Nos.7. 36 / 48 Port 10/100 BaseTX Module 1 Nos.

30


UTP Cabling Specifications

1 Enhanced CAT-5 cable (4 pair)

comply with ISO/IEC ISO 11801 ANSI/TIA/EIA/568 A/Bshould preferably be tested and verified to exceed the draft TIA specifications for 1000Base T (Gigabit Ethernet)CMR ratedUL verifiedUL listedMinimal delay skew < 8 nsElectrical characteristics:Impedance 100Ω ± 15 Ω from 1MHz to 350 MHzDC Resistance 28.6 Ω / 305m MaxResistance unbalance 5% maxPhysical characteristicsConductor: solid copperConductor diameter: 0.511 ± 0.005 mmInsulation: polyolefinInsulation thickness: 0.125 ± 0.03 mmJacket: PVCOuter diameter: 5.1 ± 0.4 mmMax Temperature: 75 0C

2 Enhanced CAT-5 UTP Information Outlets

Comply with TIA/EIA/568 A/BAngled SocketHigh Durability RJ45 InterfaceMechanicalTermination Tools:Krone (BT Inserter Wire 2A)/11IDC terminals:Suitable for 0.4 mm – 0.6 mm solid or stranded cable, max D.1.5 mmTwo wires may be terminated for Daisy chain applications25 re terminals possible.RJ45 Connector:Body material UL 94VOThermoplastic, suitable for minimum 1000 mating cyclesConnector composition:1.25 mm gold over 2.5 mm nickel over phosphor bronzeElectricalDC Resistance: 20 mΩ or lessDC Resistance Imbalance: 2.0 m Ω or less

31


Insulation Resistance: >100 M ΩAttenuation (dB)@1 MHz 0.0121 or better@16 MHz 0.0193 or better@100 MHz 0.1052 or betterNear End Crosstalk@1 MHz 84.26 or better@16 MHz 60.03 or better@100 MHz 42.32 or betterReturn Loss (dB)@1 MHz 51.26 or better@16 MHz 36.99 or better@100 MHz 18.06 or better

3 Patch Cord (Enhanced CAT-5)7 ft3 ft

Comply with TIA/EIA/568 A/BUTP / RJ45 Patch cords4 Pair cable assembly that is fully compatible with voice, data and video applicationsConstructed of stranded UTP cable for maximum flexibility and integrityBuilt in strain relief on connectors(Boots)Mechanical SpecificationsCableGauge: 24 AWG stranded copper wire pair count: 4 pairs individually color codedSequenceWiring sequence in 568 A and 568 B availableLengths: 0.3m; 0.6mm; 1.0mm; 1.5mm; 2.0mm; 3.0mm; 4.5mm; 5.0mm; 6.0mm; 7.0mm; 8.0mm; 9.0mm; 10.0mm;Temperature range: -40 0C to 60 0CCrimping PlugHousing: natural polycarbonate UL 94V-2Contract Material: Phosphor BronzeContact Plating: 1.25mm gold over 2.5mm NickelCable to PlugTensile strengths: 7.71 kg minElectrical characteristicsCableTIA/EIA category 5 LAN PerformanceETL verifiedDC resistance per lead 0.085 Ω/m nominalDC resistance unbalanced 3% nominalNominal mutual capacitance 49.6 pF/mCharacteristic Impedance 100Ω (15 % from 1 to 100MHz)ACA Approval

32


4 Jack panels / patch panels (Enhanced CAT-5)

Comply with TIA/EIA/568 A/BCapable accommodating 22-26 AWG solid/standard wires along with cable management clamps on rear and front sideCapable of mounting on 19” rack

5 Wall mount racks 12 U

Single/Double section rack 600 mm wide X 500 mm deepRigid frame which can be fixed to the wallAdjustable 19” rails in the frontFixed mounting rails in the rearTop & Bottom cable entry facilityFront section with glass doorLoad rating 40 KGMaterial made of steel & power coatedSteel door & glass door trims to be powder coated

6 Floor mount rack 42 U

With 800 mm deepFront Glass Door and back Steel Door

7 PVC channel casing & capping

ISI makeStandard class – A PVC channelPVC channel used should have 25% free space to accommodate the further requirementsThe PVC channel with casing & capping should be fired & cold/alkali retardant and rodent proof

8 GI pipe Class B typeISI Make

9 Information outlet

EN 60603 – 7 (IEC 603 – 7) and EN 28877 (ISO 8877)8 positions modular MGS 200 connector and of the insulation displacement typeCapable of receiving of 24 AWG solid and stranded wiresShould be either surface or flush mounted, single or dual sockets


33


DNS Servers

DNS servers called name servers manage portion of a hierarchical

namespace-a group of related objects contained within a small subset

of the realm of the network. The entire namespaces hierarchical to

allow for the unique identification by name of every system attached to

the connected networks and registered in database maintained by

34


name servers. The DNS hierarchy is divided into domains or zones that

form an inverted tree that starts at the route and branches downward

through independently managed domains. Authority to manage host

name-to-IP address mappings within a domain is delegated by an

administrator of a domain holding a position in the hierarchy directly

above the domain.

Any given name server knows only about the domains it’s

directly responsible for managing as well as the name servers for any

domains directly above and below its managed domains in the DNS

hierarchy. System that are represented by entries in a domain

database on a name server can be uniquely identified with in the DNS

hierarchy using a combination of host name and domain name for e.g.:

if a system has a host name of “SNOOPY” with in the domain base for

foo.bar.com, it can be contacted by a client system outside the domain

using the name snoopy.foo.bar.com, as long as the client system

resolves names with the name server with the same hierarchy. This

combination of host name and domain name is sometimes referred to

as an FQDN (Fully Qualified Domain Name).

Remote Access Server (RAS)

Remote access is the ability to get access to a computer or a network from a remote distance. In corporations, people at branch offices, telecommuters, and people who are traveling may need access to the corporation's network. Home users get access to the Internet through remote access to an Internet service provider (ISP). Dial-up connection through desktop, notebook, or handheld computer modem over regular telephone lines is a common method of remote access. Remote access is also possible using a dedicated line between a computer or a remote

35


local area network and the "central" or main corporate local area network. A dedicated line is more expensive and less flexible but offers faster data rates. Integrated Services Digital Network (ISDN) is a common method of remote access from branch offices since it combines dial-up with faster data rates. Wireless, cable modem, and Digital Subscriber Line (DSL) technologies offer other possibilities for remote access. A server that is dedicated to handling users that is not on a LAN but need remote access to it. A remote access server is the computer and associated software that is set up to handle users seeking access to network remotely. Sometimes called a communication server, a remote access server usually includes or is associated with a firewall server to ensure security and a router that can forward the remote access request to another part of the corporate network. A remote access server may include or work with a modem pool manager so that a small group of modems can be shared among a large number of intermittently present remote access users. A remote access server may also be used as part of a virtual private network (VPN).

ePolicy Orchestrator (EPO)

ePolicy Orchestrator® is a security management solution that gives you a coordinated defense against malicious threats and attacks. As your central hub, you can keep protection up to date; configure and enforce protection policies; and monitor security status from one centralized console.

Benefits:1 Enforces compliance and updates2 ePolicy Orchestrator lets you effectively manage policy

compliance and updates;3 You lower the risk of noncompliant systems compromising your

security Comprehensive security management4 Handle all your enterprise-wide system protection with this

centralized management infrastructure. 5 It covers anti-virus, anti-spy ware, host IPS, content filtering, and

Microsoft® patch assessment Find non-compliant systems6 It helps you identify noncompliant systems that increase your

risk of vulnerability and infection Assesses Microsoft patch compliance

7 You can assess Microsoft patch compliance and audit your current patch rollout processes; it informs you about your exposure to new exploits and vulnerabilities Monitors security all day, every day

36


8 You can monitor security status 24/7, evaluate your policy status, and find your network's vulnerabilities from one centralized

Features:1 Noncompliant system detection2 ePolicy Orchestrator lowers your risks due to noncompliant

systems by alerting you when such systems are connected to your corporate network Patch compliance and reporting

3 ePolicy Orchestrator lets you search for a file, service, registry key, or specific Microsoft patch; you can monitor the compliance by viewing detailed graphical reports Virus tracking and notification

4 It tracks new anti-virus security updates every hour and deploys them to appropriate systems without your intervention Automatic and fast global updating

5 Updates are distributed efficiently and quickly, so that you can respond to new and emerging threats more quickly

6 McAfee ePolicy Orchestrator delivers a coordinated, proactive defense against malicious threats and attacks. As a central hub for system security, you work through a single console to keep protection up to date, enforce protection policies, and lower the risk of infection and vulnerability due to noncompliant systems.

7 ePolicy Orchestrator enforces compliance and updates. It enables your administrators to handle enterprise-wide protection using anti-virus, anti-spy ware, system firewalls, host IPS, and content filtering. It will also check for critical Microsoft® security patches, and pinpoint a virus source and take remedial action.

Mail ServerA host server which holds e-mail messages for clients. The client (the program you use to get your e-mail) connects to the mail server and retrieves any messages that are waiting for you.The computers at your ISP that handle email coming into your account as well as all the email you send out. A mail transfer agent or MTA (also called a mail server, or a mail exchange server in the context of the Domain Name System) is a computer program or software agent which transfers electronic mail messages from one computer to another.

Dynamic Host Configuration Protocol (DHCP)

It is a client server networking protocol. The Dynamic Host Configuration Protocol (DHCP) is a protocol that automates the

37


assignment of IP addresses; subnet masks default routers, and other IP parameters. The assignment usually occurs when the DHCP configured machine boots up, or regains connectivity to the network. The DHCP client sends out a query requesting a response from a DHCP server on the locally attached network. The DHCP server then replies to the client PC with its assigned IP address, subnet mask, DNS server and default gateway information. The assignment of the IP address usually expires after a predetermined period of time, at which point the DHCP client and server renegotiate a new IP address from the server's predefined pool of addresses. Configuring firewall rules to accommodate access from machines who receive their IP addresses via DHCP is therefore more difficult because the remote IP address will vary from time to time. You'll probably have to allow access for the entire remote DHCP subnet for a particular TCP/UDP port. Most home router/firewalls are configured in the factory to be DHCP servers for your home network.

DHCP operations fall into four basic phases. These phases are IP lease request, IP lease offer, IP lease selection, and IP lease acknowledgement.

IP Lease Request -- Whenever a computer comes on line, it checks to see if it currently has an IP address leased. If it doesn't, it requests a lease from a DHCP server. Because the client computer doesn't know the address of a DHCP server, it uses 0.0.0.0 as its own IP address and 255.255.255.255 as the destination address. Doing so allows the client to broadcast a DHCPDISCOVER message across the network. Such a message consists of the client computer's Media Access Control (MAC) address (the hardware address built into the network card) and its NetBIOS name.

IP Lease Offer -- When a DHCP server receives an IP lease request from a client, it extends an IP lease offer. This is done by reserving an IP address for the client and broadcasting a DHCPOFFER message across the network. This message contains the client's MAC address, followed by the IP address that the server is offering, the subnet mask, the lease duration, and the IP address of the DHCP server making the offer.

IP Lease Selection -- When the client PC receives an IP lease offer, it must tell all the other DHCP servers that it has accepted an offer. To do this, the client broadcasts a DHCPREQUEST message containing the IP address of the server that made the offer. When the other DHCP servers receive this message, they withdraw any offers that they might have made to the client. They then return the address that they had reserved for the client back to the pool of valid addresses that they can offer to another computer. Any number of DHCP servers can respond to an IP lease request, but the client can only accept one offer per

38


network interface card.

IP Lease Acknowledgement -- When the DHCP server receives the DHCPREQUEST message from the client, it initiates the final phase of the configuration process. This acknowledgement phase involves sending a DHCPACK packet to the client. This packet includes the lease duration and any other configuration information that the client might have requested. At this point, the TCP/IP configuration process is complete.

CASE STUDY

We have defined all the networking aspects theoretically and than

we have used our concepts practically i.e. we have established a

network consisting of 100 nodes (approx.). For our objective first of

all we enabled each computer system with:

An NIC (Network Interface Card). The network Interface Card is

designed for specific IP addresses.

We have loaded a network recommended operating system in all

the systems.

We fulfilled the RAM requirement for a system.

UTP Cable (Unshielded Twisted Pair).

Fiber Optics Cable

I/O box

Switches

39


Rack

These all were the hardware requirements.

After the hardware requirements, we come to software

requirements which are:-

Assigning of IP address by DNS (Domain Name System) or

DHCP (Data Host Configuration Protocol).

Each Computer is assigned a specific Name so that it can be

easily identified on the network.

We divided all the computers in different group, and assigned

each group a specific WORKGROUP name.

We used TCP/IP protocol suit to enable the transfer of date.

We made Enterprise Level Anti Virus Solution to test the

different modules.

EPILOGUE

I have finished the industrial training scheduled in Bharat Electronics Limited and I am very thankful to the employees of HRD department and Systems department for letting access all the means under their control which were necessary for fulfillment of the training and lending a helping hand in tough times. I would say that I had a wonderful experience in BEL and wish for the progress of the company to reach greater heights.

I was involved in a project along with 2 other unpaid trainees (upt’s), this actually helped me understand the aspects of teamwork and how a team should go about a project in a methodical and planned manner.

On a personal and a moral front I have understood that one should always enjoy the work he is doing and only then one can actually be successful, another lesson is that no matter how senior an employee you are there will always be someone who needs your guidance and help, and also consequently there will always be someone from whom you can learn and gain something, so never be shy or egoistic in doing so.

And last but not the least aspect is that there is no substitute to hardwork, be that from catching the bus at 7:30 in the morning to

40


reach the workplace or at the work in the office, so hats off to my parents and employees who have been doing this for a long time to earn their living and feeding us.

41

campus wide network

Documents